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This listing of claims will replace all prior versions, and listings, of claims in the application. 
Listing of Claims: 

1 . (Currently Amended) A method for providing a secure user interface to a secured 
execution environment on a system comprising said secured execution environment and a 
second execution environment, comprising the steps of: 

accepting encrypted u ser input from a user input device i ntended for either said 
secured execution environment or said second execution environment^ from a user input 
dovico w herein the encrypted user input does not contain an explicit indication of an intended 
execution environment ; 

decrypting said encrypted user input; 

determining, based on said decrypted user input and not on execution environment 
selection input , whether said decrypted u ser input is intended for said secured execution 
environment; aftd 

if said decrypted u ser input is not intended for said secured execution environment, 
transferring said decrypted u ser input to said second execution environment; 

if said decrypted user input is intended for said secured execution environment, 
determining a specific destination entity within said secured execution environment for said 
decrypted user input, and transferring said decrypted user input to said specific destination 
entity; 

accepting output from a specific source entity within said secured execution 
environment and not within said second execution environment; and 
securely transferring said output to an output device . 

2. (Cancelled) The method of claim 1, where said step of accepting user input from a 
user input device comprises decrypting said user input. 

3. (Original) The method of claim 1, where said step of accepting user input from a 
user input device comprises establishing a secure communications channel with said user 
input. 
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4. (Original) The method of claim 1, where said step of accepting user input from a 
user input device comprises verifying said user input. 

5. (Cancelled) The method of claim 1, further comprising: 

if said user input is intended for said secured execution environment, determining a 
specific destination entity in said secured execution environment for said user input; and 
transferring said user input to said specific destination entity. 

6. (Currently Amended) The method of claim [[5]] i, where said step of determining 
a specific destination entity in said secured execution environment further comprises: 

providing window management functionality for managing at least one graphical user 
interface element owned by said specific destination entity; and 

determining that said decrvpted u ser input relates to said graphical user interface 
element. 

7. (Currently Amended) The method of claim [[5]] 1, where said step of transferring 
said decrvpted user input to said specific destination entity comprises: 

interpreting said decrvpted u ser input. 

8. (Cancelled) The method of claim 1, further comprising the steps of: 

accepting output from a specific source entity in said secured execution environment; 

and 

securely transferring said output to an output device. 

9. (Currently Amended) The method of claim [[8]] 1, where said step of securely 
transferring said output to said output device comprises: 

encrypting said output data. 

10. (Currently Amended) The method of claim [[8]] 1, where said step of securely 

transferring said output to said output device comprises: 

transferring said output to a curtained memory. 
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1 1 . (Previously Presented) A method for providing a secure user interface to a 
secured execution environment on a system comprising said secured execution environment 
and a second execution environment, comprising the steps of: 

accepting output from a specific source entity within said secured execution 
environment and not within said second execution environment; and 
securely transferring said output to an output device. 

12. (Previously Presented) The method of claim 11, where said output contains a data 
portion, and where said step of securely transferring said output to said output device 
comprises: 

encrypting said data portion of said output. 

13. (Original) The method of claim 11, where said step of securely transferring said 
output to said output device comprises: 

transferring said output to a curtained memory. 

14. (Currently Amended) A computer-readable storage medium containing computer 
executable instructions to provide a secure user interface to a secured execution environment 
on a system comprising said secured execution environment and a second execution 
environment, the computer-executable instructions to perform acts comprising: 

accepting encrypted u ser input from a user input device i ntended for either said 
secured execution environment or said second execution environment from a user input 
devie e wherein the encrypted user input does not contain an explicit indication of an intended 
execution environment : 

decrypting said encrypted user input; 

determining, based on said decrypted u ser inpu t and not on execution environment 
selection input , whether said decrypted u ser input is intended for said secured execution 
environment; and 

if said decrypted user input is not intended for said secured execution environment, 
transferring said decrypted u ser input to said second execution environment. 
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15. (Cancelled) The computer-readable storage medium of claim 14, where said 
accepting user input from a user input device comprises decrypting said user input. 

16. (Previously Presented) The computer-readable storage medium of claim 14, 
where said accepting user input from a user input device comprises establishing a secure 
communications channel with said user input. 

17. (Previously Presented) The computer-readable storage medium of claim 14, 
where said accepting user input from a user input device comprises verifying said user input. 

18. (Previously Presented) The computer-readable storage medium of claim 14, 
wherein the computer-executable instructions are adapted to perform acts further comprising: 

if said user input is intended for said secured execution environment, determining a 
specific destination entity in said secured execution environment for said user input; and 
transferring said user input to said specific destination entity. 

19. (Previously Presented) The computer-readable storage medium of claim 18, 
where said determining a specific destination entity in said secured execution environment 
further comprises: 

providing window management functionality for managing at least one graphical user 
interface element owned by said specific destination entity; and 

determining that said user input relates to said graphical user interface element. 

20. (Previously Presented) The computer-readable storage medium of claim 18, 
where said transferring said user input to said specific destination entity comprises: 

interpreting said user input. 
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21. (Previously Presented) The computer-readable storage medium of claim 14, 
wherein the computer-executable instructions are adapted to perform acts further comprising: 

accepting output from a specific source entity in said secured execution environment; 

and 

securely transferring said output to an output device. 

22. (Previously Presented) The computer-readable storage medium of claim 21, 
where said output contains a data portion, and where said securely transferring said output to 
said output device comprises: 

encrypting said data portion of said output. 

23. (Previously Presented) The computer-readable storage medium of claim 21, 
where said securely transferring said output to said output device comprises: 

transferring said output to a curtained memory. 

24. (Previously Presented) A computer-readable storage medium containing 
computer executable instructions to provide a secure user interface to a secured execution 
environment on a system comprising said secured execution environment and a second 
execution environment, the computer-executable instructions to perform acts comprising: 

accepting output from a specific source entity within said secured execution 
environment and not within said second execution environment; and 
securely transferring said output to an output device. 

25. (Previously Presented) The computer-readable storage medium of claim 24, 
where said output contains a data portion, and where said step of securely transferring said 
output to said output device comprises: 

encrypting said data portion of said output. 

26. (Previously Presented) The computer-readable storage medium of claim 24, 

where said step of securely transferring said output to said output device comprises: 

transferring said output to a curtained memory. 
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27. (Currently Amended) A trusted user interface engine for providing a secure user 
interface to a secured execution environment on a system comprising said secured execution 
environment and a second execution environment, comprising: 

an input trusted service provider accepting encrvpted user input from a user input 
device and decrvpting said encrvpted user input , operably connected to said user device; 

a trusted input manager for determining, based on said decrypted u ser input , wherein 
the decrypted user input does not contain an explicit indication of an intended execution 
environmen t and not on e xecution environment selection input , whether said decrypted u ser 
input is intended for said secured execution environment and, if said decrvpted u ser input is 
not intended for said secured execution environment, transferring said decrvpted u ser input to 
said second execution environment. 

28. (Cancelled) The trusted user interface engine of claim 27, where said input 
trusted service provider decrypts said user input. 

29. (Original) The trusted user interface engine of claim 27, where said input trusted 
service provider establishes a secure communications channel with said user input. 

30. (Original) The trusted user interface engine of claim 27, where said input trusted 
service provider verifies said user input. 

3 1 . (Original) The trusted user interface engine of claim 27, where said trusted input 
manager, if said user input is intended for said secured execution environment, determines a 
specific destination entity in said secxired execution environment for said user input; and 
where said trusted input manager further transfers said user input to said specific destination 
entity. 
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32. (Original) The trusted user interface engine of claim 31, further comprising: 
a trusted window manager that provides window management functionality for 

managing at least one graphical user interface element owned by said specific destination 
entity; and 

where said trusted input manager determines that said user input relates to said 
graphical user interface element. 

33. (Original) The trusted user interface engine of claim 31, where said trusted input 
manager interprets said user input for said specific destination entity. 

34. (Original) The trusted user interface engine of claim 27, further comprising: 
a trusted output manager that accepts output from a specific source entity in said 

secured execution environment; and that securely transfers said output to an output device. 

35. (Previously Presented) The trusted user interface engine of claim 34, where said 
output contains a data portion, and where said trusted output manager encrypts said data 
portion of said output. 

36. (Original) The trusted user interface engine of claim 34, where said trusted output 
manager transfers said output to a curtained memory. 

37. (Previously Presented) A trusted user interface engine for providing a secure user 
interface to a secured execution environment on a system comprising said secured execution 
environment and a second execution environment, comprising: 

a trusted output manager that accepts output from a specific source entity within said 
secured execution environment and not within said second execution environment; and that 
securely transfers said output to an output device. 

38. (Previously Presented) The trusted user interface engine of claim 37, where said 
output contains a data portion, and where said trusted output manager encrypts said data 
portion of said output. 
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39. (Original) The trusted user interface engine of claim 37, where said trusted output 
manager transfers said output to a curtained memory. 

40. (Original) The trusted user interface engine of claim 37, where said trusted output 
manager comprises: 

a trusted rendering interface providing rendering said output from said specific source 
entity; and where said secure transfer is a transfer of said rendered output. 
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